►
From YouTube: Sneak Peek: DataHub Roles
Description
Aditya Radhakrishnan (Acryl Data) provides a sneak peek of role-based access controls into DataHub during the August 2022 Town Hall.
Learn more about DataHub: https://datahubproject.io
Join us on Slack: http://slack.datahubproject.io
Follow us on Twitter: https://twitter.com/datahubproject
A
Cool
you're
good
to
go,
my
name
is
adithya
and
I'm
going
to
talk
a
little
bit
about
how
we're
introducing
role-based
access
control
into
data
hub
cool.
So
let's
give
a
quick
overview
of
how
like
existing
permissions
work
so
right
now
we
have
data
hub
policies
right,
so
the
pros
are
they're.
Super
powerful,
very
granular
can
allow
permissions
based
on,
like
you,
know,
specific
domains.
A
I
can
say
this
group
can
do
these
things
or
these
users
can
do
these
things,
or
maybe
I
just
want
owners
of
an
asset
to
be
able
to
perform
certain
actions
and
there's
tons
of
permissions.
Each
action
on
data
hub
has
its
own
permission
right.
Unfortunately,
sometimes
it's
really
complicated
for
those
unfamiliar
with
data
hub
to
manage.
You
know
this
is
feedback.
We've
repeatedly
received
from
all
of
you
in
the
community,
and
it
can
also
be
challenging
sometimes
to
diagnose,
like
you
know,
which
policy
like
gives
you
permission
to
take
a
certain
action.
A
Our
vision
is
that
we
want
this
to
be
the
default
for
most
data
hub
users
like
going
forward,
so
roles
is
going
to
have
it's
based
on
our
existing
policy
system
and
each
role
is
mapped
to
like
a
few
specific
policies
under
the
hood,
but
you
know
for
administrators.
It
should
be
as
simple
as
like.
I
assign
someone
to
the
admin
role
or
to
the
reader
role,
and
they
should
just
be
able
to
do
what
they
need
to
do
cool
alrighty,
let's
get
into
the
demo.
A
A
So
if
I
go
back
to
roles
right
now,
the
three
default
roles
that
we're
going
to
ship
with
for
the
first
iteration
is
this
editor
role,
this
admin
role
and
the
reader
role.
You
can
see
these
descriptions,
you
know
for
what
they're
able
to
do
here
but
reasonably
self-explanatory.
A
I
can
click
into
this
and
get
like.
You
know
see
that
description
again
and
see
which
users
have
this
role.
I
also
have
this
add
users
button
here
that
I
can
use
to
batch,
assign
a
bunch
of
users
to
that
role.
A
Additionally,
you
can
go
to
the
policies
page
and,
like
you
know,
if
I
click
on
this
admins
policy,
you
can
see
like
you
know.
This
is
this:
is
the
policy
that
this
role
is
actually
using
under
the
hood?
Well,
there's
two
policies
but
yeah
and
then
on
the
users
and
groups
page.
I
can
also
like,
if
I'm
an
admin-
and
I
have
the
right
permissions-
it's
really
easy
for
me
to
just
change
the
the
role
that
user
has.
So
this
person
is
an
editor
that
was
actually
a
mistake.
A
Cool
you
see
that
now
they're
a
reader
all
right.
Now,
I'm
going
to
perform
a
magic
trick
for
you
all,
because
you
know
we
want
to
see
that
this
actually
works
right.
So
I'm
going
to
invite
a
new
user
you'll
see
that
they
won't
be
able
to
manage
users
and
groups,
because
right
now,
that's
something
you
need
the
admin
role
to
do
and
then
we'll
assign
them
to
be
an
admin
and
then
you'll
see
that
they'll
be
able
to
have
a
full
list
of
permissions
alrighty.
A
A
A
Fantastic,
I
can
see
users
and
groups
and
permissions.
It
all
works
great.
Okay,
let
me
go
back
to
my
slide.
A
Okay,
cool,
so
what's
next,
so
just
want
to
throw
this
caveat
out
there.
Some
parts
of
the
ui
the
names
have
not
been
fully
finalized.
If
you
have
some
feedback
love
to
hear
it,
we
also
want
to
be
able
to
as
a
the
following
items
are
actually
follow-ups
and
won't
be
included
in
the
first
release.
A
We
also
want
it
to
make
it
easy
for
admins
to
send
invite
links
to
users
to
invite
them
into
a
role.
So
you
know
you
won't
have
a
default
role
to
begin
with,
at
least
on
this
first
iteration,
but,
like
you
know,
I
can
just
send
a
link
to
everyone
in
this
group
and
be
like
hey.
You
guys
should
all
be
editors.
Just
click
on
this
link
and
you'll
be
assigned
that
role.
A
A
A
Another
thing
that
we
would
like
to
do
is
that
we
want
to
make
it
easily
configurable
at
some
point
like
what
owners
can
do
across
the
platform
have
a
page
where
it's
like.
Here's
a
check
box
and,
like
you
just
say
that
you
know
owners
should
be
able
to
do
this
thing,
and
this
thing
and
this
thing
so
the
way
that
we
see
this
going
forward
is
that
our
permissions
will
be
like
based
on
like
three
tiers.
A
So
you
have
this
rules,
you
still
have
access,
or
you
still
have
like
data
policies,
and
then
you
know
we
can
also
have
this
additional
system
to
manage
what
owners
can
do.